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In this paper we define intersection and union type assignment for Parigot's calculus We show 
that this notion is complete (i.e. closed under subject-expansion), and show also that it is sound 
(i.e. closed under subject-reduction). This implies that this notion of intersection-union type assign- 
ment is suitable to define a semantics. 

Introduction 

The Intersection Type Discipline has proven to be an expressive tool for studying termination and seman- 
tics for the A-calculus |[T2l[T0l . Intersection type assignment is defined as an extension of the standard, 
implicative type assignment known as Curry's system |[T5l (see also Il24ll ). which expresses function 
composition and application; the extension made consists of relaxing the requirement that a parameter 
for a function should have a single type, adding the type constructor n next to — >. This simple extension 
allows for a great leap in complexity: not only can a (filter) model be built for the A-calculus using inter- 
section types, also strong normalisation (termination) can be characterised via assignable types; however, 
type assignment becomes undecidable. The literature on intersection types is vast; it was first defined by 
Coppo and Dezani-Ciancaglini in (13) and its development took place over a number of years, culmi- 
nating in the paper by Barendregt, Coppo, and Dezani-Ciancaglini [llj , and has been explored by many 
people since. 

It is natural to ask if these results can be achieved for other calculi (reduction systems) as well, 
and in previous papers the author investigated (in collaboration) Term Rewriting Systems |6|, and Object 
Oriented Calculi [5|; Maffeis looked at intersection types in the context of the zr-calculus [26]. In order to 
come to a characterisation of strong normalisation for Curien and Herbelin's (untyped) sequent calculus 
\}ifi lfT4l . Dougherty, Ghilezan and Lescanne presented System A^^^ lITTl . that defines a notion of 
intersection and union typing for that calculus; in a later paper ifTSl . they presented an improved version 
of their original system. 

In IS], the author revisited System A^^^, and showed that that system was neither sound (i.e. closed 
under reduction), nor complete {i.e. closed under reverse reduction); the same holds for the system pre- 
sented in ifTSl . To address completeness, tSJ adds T as the maximal and ± as the minimal type, and 
extends the set of derivation rules; however, soundness is shown to be impossible to achieve without 
restricting typeability (effectively making less terms typeable). In |4|, the author attempted to solve the 
same issue, but this time in the context of the sequent calculus X, as defined by Lengrand 1251 . and later 
studied by Lescanne and the author ITJIH; A' is a sequent calculus in that it enjoys the Curry-Howard 
isomorphism with respect to the implicative fragment of Gentzen's LK [20|. The advantage of using the 
sequent approach is that it is now possible to explore the duality of intersection and union fully, through 
which we can study and explain various anomalies of union type assignment 1321 and quantification 
Il22ll27l . Also for X, the completeness result follows relatively easily, but soundness can only be shown 
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for restricted systems (effectively call-by-name and call-by- value reduction, but it might be possible that 
other sound restrictions exist as well). The main conclusion of those papers is that, in symmetric calculi 
(hke Xjifl and tV) it is inevitable that intersection and union are truly dual, and that the very nature of 
those calculi makes a sound and complete system unachievable. 

In this paper we will continue on this path and bring intersection types to the context of classical 
logic, by presenting a notion of intersection and union type assignment for the (untyped) calculus Aji, 
that was first defined by Parigot in [31], and was later extensively studied by various authors. 

Intersection and union types have also been studied in the context of the A-calculus in [9]; also for the 
system defined in that paper soundness is lost, which can only be recovered by limiting to parallel reduc- 
tion, i.e. all residuals of a redex need to be contracted in parallel. The problem of loss of soundness also 
appears in other contexts, such as that of ML with side-effects |[22l[33llT7ll . and that of using intersection 
and union types in an operational setting |[T6l[T9l . As here, also there the cause of the problem is that the 
type-assignment rules are not fully logical, making the context calls (which form part of the reduction 
in X) unsafe; this has, in part, already been observed in 1*231 in the context of Curien and Herbelin's 
calculus Aji-jd [14J. This also explains why, for ML with side-effects, quantification is no longer sound 
12211271: also the (V7) and (VE) rules of ML are not logical. 

In the view of those failures, the result presented here comes as a surprise. We will define a notion 
of type assignment for Aji that uses intersection and union types, and show that it is both sound and 
complete. The system presented is a natural extension of the strict intersection type assignment system 
as defined in [2|; this implies that intersection models the distribution of arguments in a parameter call. 
But it is also a natural extension of the system for Aji, and in order to achieve completeness for structural 
reduction, as in the papers mentioned above, union types are added. However, the union types are no 
longer dual to intersection types; union types play only a marginal role, as was also the intention of [ 18|. 
Contrary to that paper, however, we do not see union as negated intersection, but see a union type as a 
strict type; in particular, we do not allow the normal (UI) and (UE) rules as used in Q, which we know 
create the same soundness problem. Moreover, although one can link intersection types with the logical 
connector and, the union types we use here have no relation with or; one could argue that therefore 
perhaps union is not the right name to use for this type constructor, but we will stick with it nonetheless. 

The limited view of union types is mirrored by A^'s limited (with respect to Aji-ji and A!) notion 
of context- In A}i, we distinguish control structures as those terms that start with a context switch 
fia.[fi]M, followed by a number of arguments; since union types allow us to express that the various 
continuations (all called a) need not have the same type, we use a different formulation for rule (—)•£), 
which has an implicit use of union elimination (see Definition 13.21) . The type system defined here will 
be shown to be the natural one, in that intersection and union play their expected roles for completeness. 
Because the use of intersection and union is limited in that a context variable cannot have an intersection 
type, and although we allow union types for term variables, we do not have the normal union ehmination 
rule; thanks to these two restrictions, we can show soundness as well. 

1 The calculus Xji 

Parigot's A/^-calculus f29] is a proof-term syntax for classical logic, expressed in Natural Deduction, 
defined as an extension of the Curry type assignment system for the A-calculus. We quickly revise some 
basic notions: 



In particular, A^/J's fix.c is not represented. 



Steffen van Bakel 



33 



Definition 1.1 (Lambda terms and /5-contraction IfTOll ) 1. X-terms are defined by: 

M,N ::= x\\xM\MN 

2. The reduction relation — is defined as the contextual closure of the rule: 

(Ax.M)N -^fi M[N/x] 

Curry (or simple) type assignment for the A-calculus is defined as: 

Definition 1.2 1. Let q) range over a countable (infinite) set of type- variables. The set of Curry-types 
is defined by the grammar: 

A,B ::= (p\{A^B) 
1. Curry-type assignment is defined by the following natural deduction system. 

, , , , r,x:AhM:B , , FhMrA^B ThNiA 

With Xji Parigot created a multi-conclusion typing system which corresponds to classical logic; the 
derivable statements have the shape F 1-^^ A4 : A | A, where A is the main conclusion of the statement, 
expressed as the active conclusion, and A contains the alternative conclusions, consisting of pairs of 
Greek characters and types; the left-hand context F, as usual, contains pairs of Roman characters and 
types, and represents the types of the free term variables of M. As with Implicative Intuitionistic Logic, 
the reduction rules for the terms that represent the proofs correspond to proof contractions; the difference 
is that the reduction rules for the A-calculus are the logical reductions, i.e. deal with the elimination of 
a type construct that has been introduced directly above. In addition to these, Parigot expresses also the 
structural rules, where elimination takes place for a type constructor that appears in one of the alternative 
conclusions (the Greek variable is the name given to a subterm): he therefore needs to express that the 
focus of the derivation (proof) changes, and this is achieved by extending the syntax with two new 
constructs [a]M and jioc.M that act as witness to deactivation and activation, which together move the 
focus of the derivation. 

We will now present the variant of \}i we consider in this paper, as considered by Parigot in ||30]| ; for 
convenience, we split terms into two categories: we define terms, and control structure: 

Definition 1.3 (Syntax of Xji) The \p-terms we consider are: 

M,N ::= x \ Ax.M \ MN \ iia.[p]M. 
We also define control structure as a subset of terms: C ::= f/a.[/5]M | CM. 

To shorten proofs and notation, we will treat jia.M as a term as well, whenever convenient. 

As usual, Ax.M binds x in M, and jia.[l5]M binds oc in M, and the notions of free and bound variables 
are defined accordingly; the notion of a-conversion extends naturally to bound names, and we assume 
Barendregt's convention on free and bound variables. 

In A}i, reduction of terms is expressed via implicit substitution; as usual, M[N/x] stands for the 
substitution of all occurrences of x in M by N, and M[N-j/a] stands for the term obtained from M in 
which every (pseudo) sub-term of the form [a]M' is substituted by [7] (M'N) (7 is a fresh variable) (in 
Parigot's notation: {jia.[^]M)N -> iij.[p]M[['y]PN /[a.]P]). 

We define formally how to preform the ^/-substitution; this is convenient in later proofs. 
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Definition 1.4 We define M[N-7/ a] by induction over tiie structure of terms by: 



x[N-j/ci\ = X 



{AxM) [N-j/a 
(M1M2) [N-j/a 
{^S.[a]M) [N-7/a 
{^3.[^]M) [N-j/a 



A 

4 Ax.{M[N--f/oi]) 

4 Ml [N-j/k] Ml [N-y/oi] 

4 ^5.[y]{M[N■J/c^]N) 

4 ^3.[^]{M[N■J/c^]) ^^cc 



We have the following rules of computation in Aji: 

Definition 1.5 (Afi reduction) Parigot defines a number of reduction rules: two computational rules 

logical (j6) : (Ax.M)N ^ M[N/x] 
structural (ji) : {}ia.[fi]M)N }ij.{[fi]M[N-j / a]) 

as well as the simplification rules: 

renaming: }LOc[fi]{jij.[S]M) — > ]J-a.[5]M[fi/ j] 
erasing: jia.[a]M — )• M if oc does not occur in M. 

rjfi: }ici.[(i]M Axpij.[^]M[x-j / cc] 

which are added mainly to simplify the presentation of his result^ 

Reduction on A/^-terms is defined as the compatible closure of these rules. 

It is possible to define more reduction rules, but Parigot refrained from that since he aimed at defining a 
confluent reduction system. 

The intuition behind the structural rule is given by de Groote ll2n : "/« a Aji-term jia.M of type 
A— >-B, only the subterms named by a are really of type A— )-B (. . . ); hence, when such a ji-abstraction is 
applied to an argument, this argument must be passed over to the sub-terms named by a." In this paper, 
we will only deal with the logical, structural and renaming rule; this is also the restriction made by de 
Groote in lilll . 

Type assignment for Afi is defined by the following natural deduction system; there is a main, or 
active, conclusion, labelled by a term of this calculus, and the alternative conclusions are labelled by the 
set of Greek variables a, /3, etc. 

Definition 1.6 (Typing rules for A^i) Our types are those of Definition 11.21 extended with the type 
constant _L that is essentially added to express negation, i.e.: 

A,B ::= (p\±\{A^B) {A ^ ±) 

The type assignment rules are: 

, , (^A^rx , . r h M:B I a:A,8:B,A F h M:A I a:A,A 

\ Thx:A\A VP; • Y h ^o^.[^]M:A\ ^:B,A T h im.[oi]M: A \ A 

, , r,x:AhM:B|A , , T h M:A^B I A F h N:A I A 

^ ' rhAx.M:A^B A ' F h MNrB A 



^In fact, Parigot formulates the renaming rule as (fi7.M) ^ M[/3/7]; since [/3] {}ij.M) is not a term, we write the rule 
differently. 
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We can think of [a]M as storing the type of M amongst the alternative conclusions by giving it the 
name a. - the set of Greek variables is called the set of context variables (or names). 

As an example illustrating the fact that this system is more powerful than the system for the A-calculus, 
here is a proof of Peirce's Law (due to Ong and Steward [28]): 

(Ax) 



x:{A^B)^A,y:A h y.A \ dl:A,^:B 
x:{A^B)^A,y:A h [a]y:± | dc:A 



x:{A^B)^A,y:Ah ^^.[c^]y■.B\a:A 

Ax) (-5-1) 

(A^B)^A h x:{A^B)^A \ a:A x:(A^B)^A h Ay.}i^.[a:]y:A^B \ a-.A 

x:{A^B)^A h x{\y.fi^.[a]y):A \ a:A '"^^^ 

x:{A^B)^A h [ci]{x{Ay.pi^.[a]y)):± \ a:A ^"^^ 



x:{A^B)^A h jia.[a.]{x{Xy.pifi.[a]y)):A 
h Xx.na..[K.]{x{\y.pifi.[cc]y)):{{A^B)^A)^A 



Notice that ± plays no part in this proof. Indeed, we can define the set of types without _L; the underlying 
logic of such a system then corresponds to minimal classical logic [I J. 

Since we allow ± as a proper type, we can even express negation (of course, it is also implicitly 
present in the right-hand type environment), and can give a derivation for -i^A— so can express 
double negation elimination; so in \}i we can represent full Classical Logic. 



, (Ax) 

x:A h x: A a:A,6:L 

(f) 

x:A h fi^.[a]x:± | a:A 

(Ax) (^-I) 

i/:(A^±)^± h y:(A^_L)^_L I ,6:± ^ ' h\x.^5.[oL\x■.A^L\Dc■.A 

y:(A^±)^± h y{\x.n6.[ot]x):J^ \ ix:A,^:± ^^^^ 

(u) 

y:(A^±)^± h iici.[^]y{Ax.yS.[ci]x):A \ 

h Ay.iiOi.[^]y{\x.yS.[oi]x):{{A^±)^±)^A \ ^^^^ 

Notice that this term is not closed, since j5 is free, albeit of type ±. 

De Groote ["2^1 considers a variant of which separates the naming and ^-binding feature^ This 
gives a considerable different system, that allows for -i-iA— )-A to be inhabited via (the closed term) 
Ay.^oi.y{Ax.[a]x). De Groote's variant of Apt ETTl uses the syntax 

M,N ::= x \ AxM \ MN \ jiaM \ [^]M 

and splits rule into 

rhM:±|a:A,A F h M:A I fi:A,A 



rhpa.M:A|A ' ' T h [^]M:± | /3:A,A 



■'Notice that then Parigot's renaming rule is correct. We could have presented our results for this more permissive system, 
but would have had to sacrifice soundness and completeness for the renaming rule. Notice that we would still have soundness 
and completeness for the two computational rules, which are arguably the most important. 
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In this system we can derive 

, ( Ax) 

x:A h x:A \ a:A 

a) 



x:A h [alx:± I aiA 

(Ax) ^ i^I) 

y:{A-^±)-^±h y:{A^±)-^±\ h Ax.[a.]x:A^± \ a-.A 

y:{A^±)^±\- y{\x.[ci]x):±\(x:A ^^^^ 

y:{A^±)^± h }ia..y{Ax.[a.]x):A \ 



h \y.}ia.y{Ax.[ci]x) : {{A^±)^±)^A 



For the moment, we will deal with Parigot's original system only; we aim to extend our results to de 
Groote's variant in future work. 



2 The Strict Intersection Type Assignment System for the A-calculus 

The remainder of this paper will be dedicated a notion of intersection/union typing on This will be 
defined as a natural extension of the Strict Intersection System L2J for the A-calculus. Before we come 
to that, we will briefly summarise the latter. 

Definition 2.1 (Strict types) 1. Let cp range over an infinite, enumerable set of type variables. The 
set Ts of strict types, ranged over by A, B, etc is defined through the grammar: 

A,B ::= ^ | T^B | (Aifl- • ■nA„)^B (n > 1) 

The set T of intersection types is defined as the union of {T} and the closure of % under inter- 
section; we will use A, B, etc for intersection types as well, and mention which set they belong to 
when necessary. 

2. A statement is an expression of the form M:A, with M G A and A G T. M is the subject and A 
the predicate of M : A. 

3. A type-environment F is a partial mapping from term variables to intersection types, and we write 
x:AelifT{x) = A. 

So if we write a type as A— >B, then B ^Ts, and A G T. 

In the notation of types, as usual, right-most outer-most parentheses in arrow types will be omitted, 
and we assume n to bind stronger than — From hereon, we will write n for the set {!,..., n}. 

We will consider a pre-order on types which takes into account the idem-potence, commutativity and 
associativity of the intersection type constructor, and defines T to be the maximal element. 

Definition 2.2 1 . The relation ' < ' is defined as the least pre-order on T such that: 

Ain---nA„ < A/, for all /Gn," > 1 

B< A,, forall/Gn =^ B<Ain---nA„, n>0 

2. On T, the relation is defined by: 

A<B<A =^ Ar^B A~B&C~D <=> A^C~B^D 
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3. The relations '<' and are extended to contexts by: F < F' if and only if for every x:A' G F' 
there is an x:A G F such that A < A', and: F ~ F' ^ F < F' < F. 

T will be considered modulo ~; then < becomes a partial order. It is easy to show that both 
(AnB)nC ~ An(BnC) and AnB ~ BnA, so the type constructor fl is associative and commutative, 
and we will write n„A, for A^n - ■ -CiAn, and consider T to be the empty intersection: T = Ho A,. 
Moreover, we will assume, unless stated explicitly otherwise, that in n„ A, each A, is strict. 

Definition 2.3 The strict type assignment is defined by the following natural deduction system (where 
all types mentioned are strict, with the exception of A in rule (— >I) and (— >E)): 

FhAx.MiA^B 

We will write F h M : A for statements that are derived using these rules. 

Notice that F h M: T for all F,M by rule (nl). 

Properties of this system have been studied in m. 



FhMiA/ (Vzen) 
T\- M:n„Ai 



{n > 0) 



ThMN:B 



3 Intersection and union type assignment for Xfi 

We will now define a notion of type assignment for Afi that uses intersection and union types. 

We see the context variables a. as names for possible continuations that in the philosophy of inter- 
section types need not all be typed with the same type; we therefore allow multiple types for a context 
variable in the environment A, grouped using a new type constructor, which we call union. 

Binding a context variable then generates a context switch }iOi. [/3]M, which naturally has a union type 
Ujj A,; reduction of the term (fia. [j6]M)N will bring the operand N to each of the pseudo subterms in M 
of the shape [a] Q ('named' with a), where Q has type A, ; since N gets placed behind Q, this implies that 
A, = Ci^Bj and that therefore the type for a. should be U„ (C,— t-B,) ; this then also implies that N should 
have all the types C; (Vz G n); rule {^E) as below expresses exactly that. The only 'functionality' we 
need for union types therefore is the ability to choose a collection of types for a amongst those stored in 
A; this is represented by rule (UE). 

Definition 3.1 (The system h^p 1. The set of strict types we consider for the intersection-union 
type assignment is: 

A,B ::= ^ | BiU- ■ -UBm | (^iH- ■ •nA„)^B (n,m>0) 

As above, we call Ajn - ■ -nA^ (with n > 0) an intersection type, and call BiU - ■ -UBm (with 
m > 0) a union type; we use T for the empty intersection type, and _L for the empty union type. 
2. The relation < of Definition l2.2l is extended to intersection-union types by: 

Ain---nA„ < Ai, for all zGn,M > 1 

B< A;, for all zGn =^ B<Ain---nA„, n>0 

Bj < BiU---UB,„, for all7Gm,m > 1 

By< A, forall/Gm =^ BiU---UBm<A, m>0 
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On T, the relation is defined by tlie same way as in Definition 12.21 

3. A left environment F is a partial mapping from term variables to intersections of strict types, and 
we write x:A G F if F (x) = A. Similarly, a right environment A contains only strict types, which 
can be union types. 

4. The relations '<' and are extended to left and right environments by: F < F' if and only if for 
every x:A' G F' there is an x:A G F such that A < A', and F ~ F' <^ F < F' < F, and A < A' if 
for every a.:A G A there exists a.:A' G A' such that A < A\ and A ~ A' A < A' < A. 

Notice that we consider union types to be strict as well; this implies that we allow an intersection of 
union types, a union of union types, but not a union of intersection types. 

Definition 3.2 (The system H^p Intersection-union type assignment for Aji is defined via: 

(nE) : r r-n A ^ y A \ A : —{n>0,n^l) 

, , T,x:Ah M:B \ A , , F h M:U„(A,— ^B,-) I A F h N:A; I A (V/en) 

(^t) : ^ (^B) : — ^ — (n > 1) 

^ ^ T h Xx.M:A->B\ A ^ ' F h MN:U„B/ | A 

, , F h M:U,„B,- I fi:U„A/,a:B,A F h M:U,„Bv I fi:U„Ai,A 

(UE) : "/ " (U,„B,- < U„A,-) "/ " (U,„B, < U„A,-) 

^ ' F h ;ia.[^]M:B I ^:U„A;,A ^ " F h fi^.[^]M:U„A; | A ^ " 

We write F h^J^ M : A | A if this statement is derivable using these rules. 

We will normally not distinguish between the two variants of (U£). 

Notice that the traditional (— >E) of Definition |23] is obtained by taking n = 1. Moreover, all A,- can 
be intersection types, so each can be T; this is why that rule is not formulated using F h^J^ N : flj. A,- | A. 
If x-.UmBj G F, then we can only derive F h^J^ x:UmBj \ A, i.e. we have no way of eliminating a union 
assigned to a term variable. Moreover, we have no traditional rules (UJ) and {LIE) on terms, which 
would be formulated (as in [,9|), via 

, , rhM:A|A , , FhNiAUBlA T,x:Ah M:C\A T,x:B h M:C \ A 

(UJ) : (UE) : ^ — 

^ ' FhM:AUB|A ^ ' rhM[N/x]:C|A 

These create the subject-reduction problem dealt with in that paper by limiting to parallel reduction. 

Notice that both the strict system for the A-calculus and the system for Xy. are true subsystems; the 
first by not allowing union types, or alternative conclusions, the second by limiting to Curry types. 

Lemma 3.3 (Generation lemma) • IfT \-?:^ x:A\ A, then there exists x:B G F such that B < A. 



IfT Xx.M-'.A I A, then there exists Bi,Ci{\/i G n) such that A = njj(B,-^C,), and, for all 



ieth T,x:Bi ^^"^ M:Ci\ A 



• IfT \-^^ MN:A I A, then A = Li„Ai, and for every i^n there exists Bj G T such that T \-^^^ 
M:Un{Bi^A,) \AandT H^^, N:B; | A. 

• IfT h^^^ ya..[ji]M:A \ A, then there are Ai G n) such that A = n„A;, and, for every i€Ln^ 
there are mi,m\ with m\ < nii and B'j (V; G m,) such that T h^J^ M: U,„'B[ | ^:UmiB'j,cc:Ai,A. 

Proof. By easy induction. □ 
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The system h^^ does not have choice, i.e. we cannot show that, if T h^J;^ M:AUB \ A, then either 
r h^^^ M : A I A of r h^J^ M : B I A as would hold in an intuitionistic system. Take: 

(nE) 

x:Ah x:A\ li:B,S:AU(A^B) 

— ^ (UE) 

x:A h uR.\S]x:B I S:AU(A^B) 

h Xx.u6.\S]x:A^B I S:AU(A^B) 

-^-^ ^ (UE) 

h ^S.[S]{Ax.^^.[S]x) : AU{A-!-B) \ 

Notice that we cannot derive h^"^ ii3.[S]{Ax.iifi.[S]x) : A | , nor h^^ ii3.[S]{Ax.iifi.[S]x) : A->B \ , 
since the two occurrences of [3] need to be typed differently, but with related types. This is comparable 
to both A and A^B to be needed as assumption for x to type \x.xx. 
We can show that a general (HE) (for all terms) is admissible. 

Lemma 3.4 If! h^^^; M:n„A, | A, then T h^|^ M: A,- | A, for all lEn. 

Proof. Easy. □ 
The following result is standard. 

Lemma 3.5 (Thinning & Weakening) i. Let F h^^"^ M: A | A; take T' = {x:B eT \ x efv{M) } 
and A' = {a:B G A \ocefv{M)}, then f h^j; M:A | A'. 
2. LetT H^J;; M:A I A, ant/ f < T £?«t/ A < A', then f h^J^ M:A | A'. 

Proof. By easy induction. □ 
As a consequence, the following rules are admissible: 

r h M:A I A 

(T) : ^ 

^ ^ {x:B er I xe/v(M)} h M:A I {a:B e A I a e/V(M)} 

, , r h M:A I A 

(W : ^(r'<r,A<A') 

^ ^ r h M:A I A' ^ " " ^ 

4 Subject reduction and expansion 

We will now show our main results, by showing that our notion of type assignment is sound and complete. 
We start by showing two variants of the substitution lemma. 

Lemma 4.1 (Term substitution lemma) Let A be strict; F h^J^ M[N / x] : A | A ;/ and only if there 
exists CeT such that T , x:C h'^'^^ M : A \ A and T h'^'^ N : C \ A. 

Proof. By induction on M. 

M = X : ^ : If F K^j; x[N/x] : A, then F,x:A H^^^; x : A and F h^J^ N : A. 

<^ : If F h^J^ X : A I A, then there exists A/ (Vf G n) such that A = Aj^ from some k G n, and 
F = F',x:njjA,-, so F',x:n„A, x:Afc | A. From F h^J^ N:n„A,- | A and Lemma [Ml we 
have F h^j; N : A I A, so F h^^^^ x[N/x] : A | A. 
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M = y ^ X : By Lemma [331 since y[N/ x] = y, and x ^fv{y). 

^: r M^^, y[N/x]:A \A^T h^J', y:A\ A. Take C = T: by Lemma[331 T.x:T h^^^ y.A \ A. 

M' = M1M2 : Let A = U,Ay, with r > 1. Notice that (M1M2) [N/x] = Mi [N/x]M2 [N/x]. 

: Then, by Lemma[331 there are Dj G T (V; G r) such that T h^^^; Mi [N/x] : Ur{Dj^Aj) \ A 

and r h^J^ M2 [N/x] : Dy | A, for all j G r. Then by induction, there are Ci, C2, • • • , Q such 
that: 

• r,x:Ci H^J;; Mi : U,(D^-^Ay) | A and T H^j; N: Q | A, as well as 

• r, x:4 ^2 : I A and F K^^; N : | A, for all 7 G r. 

Take C = CinC]n---nQ; then by weakening and we get r,x:C h^J^ MiM2:A | A; 

notice that T H^^^; N: C | A by (ni). 
<^: If r,x:C h^J^ MiM2:UrA^- | A, then by Lemma [331 there exists Dj G T (; G r) such that 
r,x:C h^^^; Ml : U,(Dy^Ay) | A and r,x:C h^J^ M2 : Dj \ A, for ; G r. Then, by induction, 
r K^^^; Ml [N/x] : UriDj^Aj) ] A and T h;^J^ M2[N/x] : Dy ] A for all ; G r; the resuh fol- 
lows by (— 

M = Ay.M'; M = f/a.[j6]M' : By induction. 

Because of Lemma [T4l we can extend the above results also to the case that A is an intersection 
type; notice that this is implicitly used in the third case, where Dj can be an intersection type. 
Dually, we have: 

Lemma4.2 (Structural substitution lemma) F h^J^^ M'[N-7/ft;] : C | j:Li„Bi,Aifandonly if there 
are Aj (V/ G n) such that for every Ai there exists a Bi such that, for all i&ri, T h^J^ N: A, ] A, and 
rh-;^;; M':C\cc:Un{Ai^Bi),A. 

Proof. We only show the interesting cases. 

M' = X : Then x[N-7/ a] = x; as above the result follows, in either direction, by thinning and weaken- 
ing. 

M' = Ax.M : By induction. 

M' = M1M2 : Then MiM2[N-7/a] = Mi [N-7/a] M2 [N-7/a]; assume C is strict. 

=^ : Let C = UrCj, with r > 1. Then, by Lemma [331 there exists Dj G T (V; G r) such that 
r h;^;^ Ml [N-j/a] : U,(Dy^Cy) | 7:UrnBj,A and T h^^;; M2 [N-7/a] : Dj \ T^rnBjA, for 
G r. Then by induction, there are A, (Vf G ^) and A • (Vf G /) with k + l = m such that 

• r H^j; Ml :U,(Dy^q) 1 a:U^(A;^B,),A and, for all iek,T h^J^ N:D, ] A, as well 
as 

• r h^^^; M2:Dy 1 a:U;(A;^B,),Aforall7Gr, and, forallzG/, r H^^ N:A; ] A. 

Then by weakening and wegetT h^^ MiM2:UrCy | a:U^(A;^B,) U U/ (AJ-^B,), A; 

notice that F l-^^^ N : F ] A for all f G { A,- (Vf G k), N- (Vz G /) }. 
^ : If F h^^, M1M2 : UrCy | a:U„(A,-^B,), A, then A = U„ A,, and there are Dy G T (V; G r) 
such that F h^J", Mi:Ur(Dy^q) ] a:U„ (A,-^B,), A and F h^J^ M2:Dy ] a:U„ (A,-^B,), A, 
for y G r. Then, by induction, F h^J^ Mi[N-7/a] : U,(Dy^q) | 7:U2jBy,A and F h-^|^ 
M2[N-7/a] : Dj \ j:\JmBj, A for all ; G r; the result follows by 
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M' = ji^.[ci]M : ^: Notice that ;^/3.[a]M[N-7/a] = /^j6.[7](M [N-7/a]N) by definition. Fromrh^J^ 
li^.[j]{M[N-j/a]N) : C | 7:U„B,vA, by LemmaO there are r < n and E;,D/ (V/ G r) 
such that, without loss of generality, U2-(£/— t-D/) U U„_rBi = UjjB,-, and the derivation is 
shaped like (notice that we can assume 7,j6 ^fv (N)): 



\ 


/ 


r h M[N-7/a] 


:Ur{Ei^Di) 1 7:U^B,-,^:C,A 



\ / 



r h M[N-7/a] :Ur(E,-^D,) I 7:U„B,-,^:C,A F h N:£; | A (V/ e r) 

r h M[N-7/a]N: U,D, | 7:U„B,-,/3:C, A ^^'^^ 
r h ^/S.[7](M[N-7/a]N) : C | 7:U„B/,A ^^^^ 

Then, by induction, there exist A, (V/Gn-r) suchthatT M:B„ | a:U^(A;^B,),^:C, A 
and, for all i G n—r, T h^J^ N : A, | A, and we can construct: 



\ / 

r h M:Ur{Ei-^Di) I a:U,_j_,(Ai^B0,)6:C,A 

r h M:U,(E;^D,) I a:U,(E;^D,) UU^.(A,'^Bi),^:C,A 

(UE) 

r h f/^.[a]M:C I a:Ur(E,^D,) UU,^(A,-^B,-),A 

Notice that also F h^^, N : D | A' for every D G { Ei, Ai, ... , A„_, }. 

Ifr H^^ f/,6.[a]M:C | a:Ujj(Ai^B;),A and F H^^, N:A, | A' for every f G n, then, by Lemma 
this derivation is constructed as follows: 



r h M:Ur{Ai^Bi) I a:U„(A,-^B,),^:C,A 

(UE) 

r h ^(^.[a]M:C I a:U„(A,'^60,A 

for some r < n. Then, by induction, F h^J^ M[N-j/a] : U^(A;^B,) | 7:U„B,vj6:C A, and 
we can construct: 



\ / \ / 

r h M[N-7/a] : Ur(A,-^B,-) | 7:U„B/,^:C,A F h N:A/ | A (V/er) 

r h (M[N-7/a])N : U,B,- | 7:U„B,-,^:C,A 

(UE) 



(^E) 



rh?/^.[7]M[N-7/a]:C|7:U„B„A □ 



Using these two lemmas, we can prove the two main results of this paper: 

Theorem 4.3 (Subject expansion) IfM ^a;/ N, and F hJJ;; N : A | A (A strict), then F h^J", M : A | A. 

Proof. By induction on the definition of reduction, where we focus on the reduction rules. 

{AxM)N M[N/x\ : If F,x:B h^J", M[N/x] : A | A, then by Lemma gl] there exists a B G T such 
that F, x:B h-A^ M : A I A and F h^^^^ N : B I A; then, by applying rule (->J) to the first result we get 
F Ax.M:B^A I a and then by (^E) we get F h^^; (Ax.M)N:A | A. 
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{}ioc.[a]M)N ^J.[J]M[N■^/a]N : If T h^j; ^J.[J]M[N■J/a]N : A | A, then A = U„A;, and by 
Lemma 1331 (wlog) there is m < n such that Y h^J^ M[N-j/a]N : UmAj \ 7:U„A,-,A, and there 
are B,- (Vf G fw) such that, F h^J^ M[N-7/a] : U^(By^Ay) | 7:UjjA,-,A and for all ;Gm, F h^j^ 
N: B^- I A. Then, by Lemma |42l there are C, (Vf G n) such that for all ien,T h^^ N: Q | A, and 
r hj^ M: Uot(B;— >-A;) I a:Un (Q— >-A,), A; (wlog) by weakening, we can assume UmBy < U^Q. 
Then, by rule (UE), F H^j; ;^a.[a]M: U„(Q^A;) | A, and T h^J^ (/ia.[a]M)N: U„A, | A then 
follows by rule (— 

{}icc.[^]M)N f/7.[j6]M[N-7/a] : Iff h^J^, (/Ya.[/S]M)N: A | A, then A = U„A,-, and by (^E) there 
are Q (Vz G n) such that T h^""^ jicc. [^] M : U„ (C;-> A,) | A, and T h^^N: Q \ A for all / G n; then 
by LemmagH T H^J", jW7.[j6]M[N-7/a] : A | A. 

^a.[j6]f/7.[(5]M^;^a.[^](M[^/7]) : Iff K^J^ /^a.[(5](M[^/7]) : A | A, then by rule (UE), there exist 
S:UnDi G A and m < n such that T M[^/j]:UmDj \ a:A,A. Let A = (5:U„D,,^:UfcB;, A'. 
Since M can contain j6 as well, this means that there are Cj (V; G k),Ei (Vz G /) with U^Cy U 
UicE, = UjcB/, and we can construct: 

\ / 

r h M:D^ I r-^„,Cj,S:U„Di,B:\JkEi,ci:A,A' 

^ 7 (UE) 

r h ^(7.[J]M:Umq I <5:U„Di,^:U^E/,a:A,A' 

T h iioi.[^]liy.[S]M:A\A ^^^^ 
which shows the result. □ 

Theorem 4.4 (Subject reduction) IfM -^xyi M <3«(i F 1-^,, M: A | A, w/iereA Z^' not an intersection, 
then F l-A;, N : A I A 

Proof. {\x.M)N M[N/x] Let F h^,, {\x.M)N:A \ A. Then by Lemma [33] there exists B G T 
such that F Ka,, Ax.M:B->A | A and F Ka;, N: B | A, and also F,x:B Ka^ M:A | A. Then, by 
Lemma |4~T1 we have F Ka,, M[N/x] : A | A. 

{li<x.[(x]M)N iij.[-f]M[N-j/a]N : If F h^^^; {ii<x.[^]M)N -.A \ A, then by Lemma [331 there exist 
Ai (Vi G n) and Q (Vf G n) such that A = A,-, and F h^^"^ ^a.[|8]M : U„ (Q->A,) | A and, for 
all zGn, F h^j; N:Q | A; then also F H^J^ M:B | a:Uij(Q^A,), A, with ^:B' G A with B and B' 
union types such that B < B'. Then, by Lemma 1431 F h^J^, M[N-7/a] : B | 7:UjjA,-, A, so, by rule 
(UE),F h^;; ^7.[j6]M[N-7/a] : U„A,- | A. Then, by (^£),F K^)^ MN:C | a:U„ (A.-^B,-), A. 

ji(z.[^]]i-f.[3]M jiCi.[S]{M[^/j]) If F M^^ }ia.[^]iij.[S]M:A \ A, the derivation is shaped like: 



\ / 
T\- M:Dp\ r-Bi,^-^nDi,^:UkBi,a:A,A' 



Th ^j.[S]M:B,\^:UkB„a:A,A' 
r h ?ia.[;6]^7.[(5]M:A | ^:U^Bi,A' 

with A = /6:UmBy, A', for some B, (V/ G m), with Z G ^, and p G n- It is straightforward to show 
that then F M[f^/j]:Dp \ j6:U^B„a:A, A', and applying rule (U£) to this derivation gives 
Fh-^«.[^](M[/3/7]):A|A. ~ □ 
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Notice that we cannot show subject reduction for the erasing rule. Assume the derivation for 
^a.[a]M with M not a control structure is shaped Uke 



\ 1 

Th M:Aj\ a:U„A.-,A 

— (UE) 

r h [a]M:_L | ft;:U„A,-,A 

M 

r h ^oi.[(x]M:UnAi I A 

Since a does not appear in M, by thinning we can derive T h'^^ M:Aj \ A, but have no rule to allow us 
to derive T h^JJ^ M : U„ | A from that. 



Conclusions 

We have seen that the calculus \}i is sufficiently limited to allow for the definition of a sound and 
complete notion of type assignment. This will need to be investigated further, towards the definition 
of semantics, and characterisation of the termination properties. Also, we need to look at the ignored 
reduction rules, and see if it is possible to generalise the system such that also these will be preserved, 
without sacrificing the main results. The approach we use here seems to be promising also for the setting 
of (restrictions of) X and \}ifi; we will leave this for future work. 
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